General

  • Target

    4f3f05638012fb4abe20052cb19538a4

  • Size

    402KB

  • Sample

    240110-b4y16sbdfq

  • MD5

    4f3f05638012fb4abe20052cb19538a4

  • SHA1

    6c5b62fe030f8836c7297008872e4af796fbf98e

  • SHA256

    ec4ba3409afd25135b3126a59658950c5745e9e3cbd88a61056936b66aed545e

  • SHA512

    badf6145f6f1a11a12d99456d216c61d983cc90d6a72124d7a62268907cdd8fb14e279276d778513fd6063478049fc3527254cb957f485a420b459ddad2920e2

  • SSDEEP

    12288:D6RpfAnL/g7MiLNJjUBQg3lvQd52GYIa:GQ2SGla

Malware Config

Targets

    • Target

      4f3f05638012fb4abe20052cb19538a4

    • Size

      402KB

    • MD5

      4f3f05638012fb4abe20052cb19538a4

    • SHA1

      6c5b62fe030f8836c7297008872e4af796fbf98e

    • SHA256

      ec4ba3409afd25135b3126a59658950c5745e9e3cbd88a61056936b66aed545e

    • SHA512

      badf6145f6f1a11a12d99456d216c61d983cc90d6a72124d7a62268907cdd8fb14e279276d778513fd6063478049fc3527254cb957f485a420b459ddad2920e2

    • SSDEEP

      12288:D6RpfAnL/g7MiLNJjUBQg3lvQd52GYIa:GQ2SGla

    • Drops file in Drivers directory

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Checks whether UAC is enabled

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks